JIRA Security Advisory 2007-12-24

Posted on January 1, 1970

The fix is to escape all of the error messages rendered on the 500 page, so that no user input, which is propagated to …

The rest is here:
JIRA Security Advisory 2007-12-24

» Filed Under security

Comments

• 
  

• Tags

  a ability about-me appsec beginning-php4 bibliography business code compose-inc-php database design documentation escaping-output findmsg-inc-php flash folder-inc-php google html imap-class-php input filtering internet library Links load-balancing media mysql-class-php news pear php php5 programming readmsg-inc-php security seo skip-to-sidebar smtp-class-php sql-injection technology tools user validation web application security webappsec where-hacking wordpress

• Archives

  • June 2008
  • May 2008
  • April 2008
  • March 2008
  • February 2008
  • January 2008
  • December 1969

• Meta

  • Log in
  • Entries RSS
  • Comments RSS
  • WordPress.org